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PATENT 

Attorney Docket No.: 18926-002310 
Client Reference No.: D2308 

CONFIGURABLE ENCRYPTION/DECRYPTION FOR MULTIPLE 

SERVICES SUPPORT 

This application claims the benefit of U.S. provisional application 
5 60/138,919 filed on June 1 1, 1999. 

BACKGROUND OF THE INVENTION 
This invention relates generally to digital processing and more 
specifically to resource allocation in an encryption/decryption processing system. 

In mass distribution systems (such as in the cable industry), a 
10 supplier (such as a cable company) typically supplies different services (e.g., cable 
g-. programs, subtitles, foreign language audio tracks, an intemet connection, audio 

yit programs, pay-per-viev^ channels, a programming guide, etc.) to different customers. The 

.Ul 

services provided to each individual customer will consequently vary according to the 
requirements of that individual customer. Furthermore, the necessary level of security 
15 (e.g., the level of decryption necessary to decrypt a supplied service datastream) required 
for each customer will vary depending on the services ordered by each customer. 

While the services ordered by each customer may vary, it is cost effective 
to have all customers utilize the same equipment at the receiving end of the distribution 
Cl system, e.g., the set-top boxes used in cable customers' homes should be the same. This 

20 allows mass production of the receiving equipment and facilitates distribution and 
stocking of equipment and replacement parts. 

Thus, there are competing needs. There is the desire to allow an individual 
customer to select and optimize the program content received. Similarly, there is the 
desire to have all customers use similar equipment. 
25 Existing systems have been unable to satisfy these needs. They have 

typically defaulted to supplying the same type of equipment to all customers and 
configuring that equipment to provide decryption of a signal that has been encrypted at 
the highest level of encryption encountered by all customers' requirements. This is 
undesirable from the individual customer standpoint, because those customers who order 
30 services with low level security are still required to use a receiver that is configured to 
provide decryption of a service having a high level of security. Thus, due to memory 
constraints inherent in most devices, the configuration of that receiver is unnecessarily 
limited. For example, when a higher level of encryption is utilized, a receiver must 
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devote more memory to storing keys and data to decrypt the signal. Thus, fewer services 
can be decrypted when at least one of those services has a high level of encryption. 

Others have also defaulted to supplying different equipment to different 
customers. Thus, customers with high level of decryption needs can utilize equipment 
5 having a high level of decryption but receive fewer services. Similarly, customers who 
have a setup in which only low level encrypted services will be received are given 
equipment that decrypts at the low level decryption scheme. Thus, such a customer can 
receive more services encrypted at this low level of encryption as compared to the 
customer who receives high level encrypted signals when each customer's equipment 
10 utilizes a similar amount of memory. 

Similarly, there is a need at the sending end of a transmission for a system 
jl that permits a datastream to be encrypted at different levels of security. Namely, there is 

y ^ a need for an encryption system that is configurable such that it can encrypt a datastream 

""-.J at a variety of levels of encryption. This will allow the encryption system to provide 

y I 15 several services encrypted at a low level of encryption while also providing a high level 

I of encryption when only a few services are transmitted to a customer. Similarly, there is 
CI a need for this circuitry to be reconfigurable such that the same circuitry or integrated 

O i 

f I circuit can be utilized to accomplish both types of encryption. 

m 20 . SUMMARY OF THE INVENTION 

A method of providing data comprises storing a first set of encryption data 
associated with a first data stream, encrypting the first data stream at that level of 
encryption, storing a second set of encryption data associated with a second data stream, 
encrypting the second data stream at the second level of encryption which is different 
25 from the first level of encryption, and utilizing a common memory to encrypt both the 
first data stream at the first level of encryption and the second data stream at the second 
level of encryption. According to one aspect of the invention, a different number of 
services are encrypted according to the level of encryption that is utilized to encrypt the 
services. Yet another aspect of the invention allows a similar system to be utilized to 
30 decrypt messages encrypted at different levels of encryption by utilizing different 
decryption algorithms loaded into a common memory. 

Another aspect of the invention allows a reconfiguration circuit to be 
utilized to reconfigure a processor to operate on cryptographic data, such that the 
processor is operable to process different encryption or decryption levels. 
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Thus, the different embodiments of the invention satisfy needs left 
unfiilfilled by existing systems. Other and ftirther features of the invention will be 
apparent to those skilled in the art from a consideration of the following description taken 
in conjunction with the accompanying drawings wherein certain methods of and 
5 apparatuses for practicing the invention are illustrated. However, it is to be understood 
that the invention is not limited to the details disclosed but includes all such variations 
and modifications as fall within the spirit of the invention and the scope of the appended 
claims. 

1 0 BRIEF DESCRIPTION OF THE DRAWINGS 

Figures la and lb are flow charts illustrating the transmission and receipt, 
CI respectively, of two sets of services to a customer at different levels of encryption, 

yi Figure 2 illustrates the receipt of different program data from satellites and 

distribution from the cable head end to a representative customer. 
'4i 15 Figure 3 is a block diagram illustrating the transmission of a portion of the 

fd N services available at the cable head end, encryption of the selected services, and 

1. decryption for use by the customer. 

Oh Figure 4 is a block diagram illustrating the components of a receiver of an 

Q\ encrypted signal such as a set-top box. 

If 20 Figure 5 is a schematic diagram illustrating the operation of a Single Data 

Encryption Standard (DES) mode of encryption and decryption using a single key (A), as 
well as symbolic notations for such operations. 

Figure 6 is a schematic diagram illustrating the operation of a Triple Data 
Encryption Standard ABA mode of encryption and decryption using two keys (A and B), 
25 as well as symbolic notations for such operations. 

Figure 7 is a schematic diagram illustrating the operation of a Triple DES- 
EDE using keys A, B, and C mode of encryption and decryption, as well as symbolic 
notations for such operations. 

Figure 8 is a schematic diagram illustrating the operation of a Triple DES- 
30 EBE-ABC-4IV mode of encryption and decryption, as well as symbolic notations for 
such operations. 

Figures 9a-9d illustrate various memory maps that can be used in 
conjunction with the Single DES, DES-ABA, DES-ABC, and DES-ABC4 
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encryption/decryption algorithms, respectively, as well as the number of services that can 
be accomplished in the common memory space. 



DESCRIPTION OF THE SPECIFIC EMBODIMENTS 
Referring now to Figure la, a preferred embodiment of the invention can 
be seen. A distributor of services such as a cable company receives several services for 
distribution to its customers 104. Examples of different sets of such services can be seen 
in Tables 1 and 2 below. For example, a background service like an interactive program 
guide might be available for distribution to a customer. Similarly, a number of programs 
with different program content are likely available as well. As part of each program, a 
variety of different audio and video options could be offered for each program. For 
example, a customer could be offered a Spanish audio service in addition to English. 
Similarly, subtitles could be provided for a program. In addition, services might be made 
up of data connections to a computer network such as an intranet or the Internet. Thus, a 
distributor is often in a position to offer many different services. 
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SERVICE NO. 


SERVICE NAME/NOTATION 


DESCRIPTIONS 


1 


background service - B 


such as interactive Program Guide (IPG). 


2 


video 1 service - V| 


to support a video with two audio. 


3 


audio 1 service — Ai 


audio 1 service could be in one language to support 
its corresponding video (Vj). 


4 


audio 2 service - A2 


audio 2 service could be in another language to 
support its corresponding video (Vi) 


5 


oiiHtitlf* QPr\7ir*p ^nr. 


tn ciinnort Qnl^tii"l*=» c*=»n7ir*f» 

LU oLiLflJvJlL oUULiLlC oCiVl^C 


6 


video 2 service - V2 


by supporting V2 along with V], we can support 
picture-over-picture service (have two programs 
displayed at screen simultaneously). 


7 


(audio 2 service for V2 - AV2) 


to support picture-over-picture service, AV2 may 
not be necessary. But by supporting AV2, we can 
provide customer with recording (to VCR) 
capability. 


TABLE 1 


SERVICE NO. 


SERVICE NAME/NOTATION 


DESCRIPTIONS 


1 


background service - B 


such as interactive Program Guide (IPG). 


2 


video 1 service - Vi 


to support a video with two audio. 


3 


audio 1 service — Ai 


audio 1 service could be in one language to support 
its corresponding video (Vi). 


4 


data service - D 1 


data channel to support Web browser. 



m TABLE 2 



SECURITY LEVEL 


NO OF SERVICES 


MEMORY 


SINGLE DES MODE 


16 


1 Kilobyte 


TRIPLE DES ABA MODE (2 KEYS) 


8 


1 Kilobyte 


TRIPLE DES ABC MODE (3 KEYS) 


4 


1 Kilobyte 


TRIPLE DES ABC 4 IV'S MODE 


2 


1 Kilobyte 



TABLE 3 



Each service does not necessarily have a common level of security with 
the other services ordered by a customer, however. For example, transmission of a 
service comprising a local television station signal will have a very low level of security 
while a service of a pay-per-view station signal will require a higher level of security. 

As Figure 2 demonstrates, the source of the various services can originate 
from a variety of sources. Oftentimes, the source will be from signals broadcast through 
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satellites, such as satellites 201, 202 and 203 to a satellite receiver 210. Other sources 
might be a landline transmitted signal such as landline 207. Similarly, a service might be 
generated at the cable head end 220 before being distributed over the cable company's 
distribution system to end-user 224. 
5 An end-user will typically select the types of services that are desired to be 

received from the distributor of services. A level of encryption is selected for the set of 
services to be sent to the end-user 108. For example, an end-user might select a movie 
channel having a high level of security. In such a case, the movie channel would be sent 
to the end-user with a number of other services. The number of services will depend on 
10 the number of services that can be encoded when the selected type of encryption for the 
movie chaimel is utilized. Namely, a high level of encryption will limit the resources that 
p| are available to a processor. Hence, fewer services can be encrypted by a processor with 

?:{ a fixed memory space when the processor is responsible for encrypting a service at a high 

Oi level of encryption as compared to the number of services that can be encrjq^ted when the 

ijS 15 processor is encrypting the same services at a lower level of encryption. 

I J Once the distributor of services, such as the cable company, has 

s determined the necessary level of encryption at which to encrypt the set of services 

Gi 

gl destined for an end-user, a corresponding set of encryption data is loaded into the 

f\ 

encryptor. Preferably, the encryption device is an integrated circuit such as that shown in 

y H 

CI 20 Figure 4. The device in Figure 4 is unique in that it can serve as both an encryption and 
decryption device. Namely, encryption and/or decryption algorithm codes can be stored 
in its internal memory, until they are needed. Then, when needed, the processor 404 
utilizes the loaded cryptographic codes and associated keys to cryptographically process a 
datastream received by device 400. Hence, depending on whether encryption or 

25 decryption is to be accomplished, the memory of integrated circuit 404 can be stored with 
encryption or decryption algorithms, respectively. Thus, the integrated circuit 404 is 
universal in that it can be utilized in either an encryption or decryption device. 

Encryption keys are preferably stored as part of the encryption data 1 16 in 
one of the registers of integrated circuit 404, such as "Register 1" 420 or "Register M" 

30 424 along with the encryption algorithm code stored in internal memory. Similarly, the 
encryption keys can also be stored in internal RAM 428. Thus, the encryption keys and 
the encryption code necessary to implement the encryption algorithm comprise the 
encryption data. It should be noted that in some cases encryption code might be loaded 
piecemeal from external memory into the processor's internal memory. Thus, it is not 
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necessarily required that all of the encryption code be resident in the processor at all 
times. 

The number of services that can be utilized when the processor 
implements the highest selected level of encryption is determined 1 20 as shown in Figure 
la. As noted earlier, this number of services will depend on the type of encryption 
selected. When a service will require a high level of encryption, then the processor will 
only be able to encrypt a given number of services because the fixed memory resources of 
the processor will only permit that many services to be encrypted. A priority scheme can 
be established by the user, by the end-user or by both in order to determine which 
services are preferred. Thus, if the number of services is limited in order to accommodate 
a high level of encryption, the determination as to which services are sent to the end-user 
can be predetermined. 

Once the services are determined, they are combined into a datastream 
124, In the preferred embodiment, this is accomplished utilizing the MPEG-2 standard to 
create a transport stream. Such a transport stream would packetize the various services 
such that they could be sent to the enduser. Preferably, after the datastream is 
transformed into a datastream, the datastream is encrypted 128. Thus, the datastream is 
input into an encryptor, such as the circuit of Figure 4. The encryption algorithm code 
which has been loaded into integrated circuit 404 is then utilized along with associated 
encryption keys to encrypt the datastream which is comprised of the selected services. 
The encrypted datastream is transmitted to the end-user, such as a cable customer 132. 
The end-user receives the encrypted datastream and processes it in a reverse order so as to 
retrieve the services. Thus, the end-user is able to decrypt the datastream and parse the 
MPEG-2 formatted datastream so as to obtain the data for the services. 

This procedure can continue until a change in encryption level is required. 
Consider the situation where the cable company needs to encrypt at a higher level of 
encryption than what the customer is receiving. The encryption device at the cable 
headend and the decryption device at the customer's location will be re-configured to 
implement the higher levels of encryption and decryption, respectively. 

Once the need for the new level of encryption is detected, the new level of 
encryption, i.e., a level of encryption that differs from the level of encryption used by the 
previous datastream, is selected 140. The encryption device is then reconfigured to 
accommodate the new level of encryption. Preferably, this occurs by re-allocating the 
memory of the encryption processor to store a second set of encryption data 144. Such 
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encryption data would be comprised of the encryption algorithm code for use by the 
processor and the accompanying encryption keys. The keys might be moved from a 
reserved register to a more immediate register. It should be noted that key information 
could be retained by the processor in order to maintain its security. Thus, the second set 
of encryption data associated with the new encryption level is stored in the processor 148 
as are the encryption keys 152. As an alternative, the encryption code could be loaded 
from external memory. 



accommodated by the new level of encryption is determined 154. Typically, this will be 
a predetermined number given the known memory requirements for each algorithm and 
the size of the processor memory. For example, for a processor having a memory size of 
one kilobyte. Table 3 shows the number of services that can be encrypted using a variety 
of encryption algorithms. As can be seen, when the Data Encryption Standard, having 
only one key, is utilized, the number of services that can be encrypted with a memory size 
of one kilobyte is sixteen. In contrast, when a more memory intensive level of encryption 
is utilized, such as Triple DES-ABC with four Initialization Vectors, only two services 
can be encrypted by the processor with a memory space of one kilobyte. Thus, this aspect 
of the invention is useful in that it prevents the processor from failing by tracking how 
many services can be provided for a given level of encryption and a given size memory of 
the processor. 



combined into a second datastream 158. The second datastream will differ from the first 
datastream due to the differing services allowed by the new level of encryption. Again, 
the MPEG-2 standard is preferably used. At this stage, the encryption device, such as 
processor 404, is utilized to encrypt the services 164 in the second datastream. The fixed 
memory of the processor is utilized to accomplish this encryption. Thus, the memory is 
considered common between the encryption of the first data stream and the second data 
stream in that it does not change in storage size when a new encryption process is 
implemented 162. The second datastream is then transmitted to the end-user, e.g., to the 
set-top box of a customer. 



receiving end of the datastreams. Such a receiver could be a set-top box for use in 
receiving cable signals. Alternatively, it could be a consumer electronics device that 
receives encrypted data. The operation of the receiver closely parallels the operation of 



Given the new level of encryption, the number of services that can be 



Once the number of services is determined, the allowable services are 



Figure lb illustrates the preferred embodiment of the invention at the 
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the configurable encryption device. Similar hardware can be utilized. However, instead 
of encryption code being stored by the receiver, decryption code would be stored by the 
receiver. Thus, in Figure lb, the first feature shown is that of storing more than one 
decryption algorithms in the memory of the receiver 172. These algorithms would be 
stored in the memory of the receiver. Decryption keys would also be stored in the 
processor as part of this first set of decryption data 176. Preferably, the decryption keys 
would be stored by the cable company in the registers of the processor of the receiver in 
order to prevent an attacker firom obtaining the keys from external memory. 

The decryption device receives a datastream for decryption 180 and 
decrypts the datastream 184. The decryption data is utilized to acconiplish this. 
However, when the encryption level is changed, the decryption processor must be 
reconfigured to accommodate the new level of encryption 188. Thus, the decryption 
processor is reconfigured just as was the encryption processor as explained above. To 
accommodate the second level of encryption, a second set of decryption data is stored in 
the processor 192. Similarly, decryption keys are stored as part of the second set of 
decryption data 196. As noted earlier, the decryption keys can be stored in registers of 
the decryption processor in order to secure their values. However, part of the 
reconfiguration might entail moving the keys fi-om one register to a different register so as 
to facilitate access. Furthermore, code (or at least the first portion of the code) for the 
new decryption algorithm could, as an alternative to being permanently resident in 
internal memory of the processor, be moved from external memory to intemal memory. 
While the apparatus of Figure 4 was described earlier with reference to an encryption 
device, it would also be applicable as the decryption device. 

The second datastream is then received by the receiver 197. The 
decryption device then decrypts this second data stream 198. Again, this decrj^tion is 
accomplished using a common memory of the decryption device to decrypt both the first 
and second datastreams 199. 

The process of switching encryption or decryption levels can be 
accomplished repeatedly. Thus, as the decision to change is made, single processor can 
be utilized to implement different levels of encryption or decryption while providing the 
maximum number of services allowable for a given memory constraint of the processor. 

Figure 3 illustrates a block diagram representation of an 
encryption/decryption system. In Figure 3, a cable head end 320 establishes services 1- 
"N" 330. Based on the number and priority of the services to be sent to an enduser, these 
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services are multiplexed into a datastream by multiplexer 334 into a stream of "X" 
services. The stream of "X" services is then encrypted by encryptor 338 and transmitted 
to the end-user. At the end-user the stream is decrypted by decryptor 342. 

Figures 5, 6, 7, and 8 illustrate encryption/decryption algorithms 
5 contemplated for the invention. Figure 5 is a schematic diagram illustrating the operation 
of a Single Data Encrj^tion Standard (DES) mode of encryption and decryption using a 
single key (A). Figure 6 is a schematic diagram illustrating the operation of a Triple Data 
Encryption Standard ABA mode of encryption and decryption using two keys (A and B). 
Figure 7 is a schematic diagram illustrating the operation of a Triple DES-EDE using 
10 keys A, B, and C mode of encryption and decryption. Figure 8 is a schematic diagram 
illustrating the operation of a Triple DES-EBE-ABC-4IV mode of encryption and 
£1 decryption. SymboUc notations are also noted in these figures. The actual 

yi implementation of each mode would be understood by those of ordinary skill in the art 

and is omitted for the sake of conciseness. 
15 Figures 9a, 9b, 9c and 9d are demonstrative in showing how a fixed 

pj memory size can only support a given number of services when a particular 

encryption/decryption algorithm is implemented. As can be seen in Figure 9a, data to 
encrypt or decrypt services S0-S15, i.e., 16 services can be stored in the memory map 

CI 

§1 designated Mode 00. This is for implementation of Single DES where a current 

Sf 20 initialization vector is stored as "C-IV": a next initialization vector is stored as "N-IV" 
and Current and Next values are stored for key "A". In contrast, Fig. 9d demonstrates 
that only 2 services can be stored by the same memory when DES-ABC4 is utilized, 
having 4 Initialization Vectors. Thus, as can be seen in the memory map of Figure 9d, 
service SO requires a current and next values for each of the "A", "B", and "C" keys, as 
25 well as current and next values for the four initialization vectors "IVO", "IVl", "IV2" 
and "IV3'\ 

In addition to embodiments where the invention is accomplished by 
hardware, it is also noted that these embodiments can be accomplished through the use of 
an article of manufacture comprised of a computer usable medium having a computer 
30 readable program code embodied therein, which causes the enablement of the functions 
and/or fabrication of the hardware disclosed in this specification. For example, this might 
be accomplished through the use of hardware description language (HDL), register 
transfer language (RTL), VERILOG, VHDL, or similar programming tools, as one of 
ordinary skill in the art would understand. Therefore, it is desired that the embodiments 

10 
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expressed above also be considered protected by this patent in their program code means 
as well. 

It is also noted that many of the structures and acts recited herein can be 
recited as means for performing a function or steps for performing a function, 
respectively. Therefore, it should be understood that such language is entitled to cover all 
such structures or acts disclosed within this specification and their equivalents. 

It is thought that the apparatuses and methods of the embodiments of the 
present invention and many of its attendant advantages will be understood from this 
specification and it will be apparent that various changes may be made in the form, 
construction and arrangement of the parts thereof without departing from the spirit and 
scope of the invention or sacrificing all of its material advantages, the form herein before 
described being merely exemplary embodiments thereof 
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